Lucene search

[email protected]CVE-2022-43027

HistoryOct 19, 2022 - 7:15 p.m.

CVE-2022-43027

2022-10-1919:15:10

CWE-787

[email protected]

web.nvd.nist.gov

cve-2022-43027

tenda tx3

stack overflow

firewallen parameter

setfirewallcfg

nvd

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

61.2%

JSON

Tenda TX3 US_TX3V1.0br_V16.03.13.11_multi_TDE01 was discovered to contain a stack overflow via the firewallEn parameter at /goform/SetFirewallCfg.

Affected configurations

NVD

Node

tendatx3_firmwareMatch16.03.13.11

AND

tendatx3Match-

CPENameOperatorVersion
tenda:tx3_firmwaretenda tx3 firmwareeq16.03.13.11

CPE	Name	Operator	Version
tenda:tx3_firmware	tenda tx3 firmware	eq	16.03.13.11

References

github.com/tianhui999/myCVE/blob/main/TX3/TX3-5.md

Social References

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

0.002 Low

EPSS

Percentile

61.2%

JSON

Related for CVE-2022-43027

prion1 cvelist1 cnvd1 nvd1